Advantech EKI-122x-BE devices with firmware before 1.65, EKI-132x devices with firmware before 1.98, and EKI-136x devices with firmware before 1.27 have hardcoded SSH keys, which makes it easier for remote attackers to obtain access via an SSH session.

Vulnerable Systems:
* Advantech EKI-122x-BE devices with firmware before 1.65, EKI-132x devices with firmware before 1.98, and EKI-136x devices with firmware before 1.27

Independent researcher Neil Smith has identified a hard-coded SSH key vulnerability in Advantech s EKI-122X series products. Advantech has produced new firmware to mitigate this vulnerability. An attacker who exploits this vulnerability may be able to intercept communications to and from this device. Impact to individual organizations depends on many factors that are unique to each organization. NCCIC/ICS-CERT recommends that organizations evaluate the impact of this vulnerability based on their operational environment, architecture, and product implementation.